Upload
johnniequest-queens-best
View
220
Download
0
Embed Size (px)
Citation preview
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
1/83
1 2004, Cisco Systems, Inc. All r ights reserved.
A WalkA Walk--Through of theThrough of the
DOCSIS SetDOCSIS Set--top Gatewaytop Gateway(DSG) Protocol Specification(DSG) Protocol Specification
April 29, 2004
John T. ChapmanDistinguished Engineer
Cisco Systems
EDCS-372533
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
2/83
2004, Cisco Systems, Inc. All r ights reserved. 2
Presented By:
John T. Chapman, Cisco Systems
Agenda
Overview
ECR Walk-Through
Applications
Examples
Content in BLUE is taken directly from the DSG Specification.
MUST, MAY, and SHOULD are highlighted in RED.
Content in BLACK is commentary
This presentation has been prepared against:DSG-O-04.0133-9, John Chapman, CPE=4/27/2004
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
3/83
2004, Cisco Systems, Inc. All r ights reserved. 3
Presented By:
John T. Chapman, Cisco Systems
DSG OverviewDOCSIS Set-Top Gateway
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
4/83
2004, Cisco Systems, Inc. All r ights reserved. 4
Presented By:
John T. Chapman, Cisco Systems
History
Dec 2000: Problem proposed to Cisco by Time Warner. Cisco(John T. Chapman) responds with the basic DSG concept.
Feb 2001: OpenCable Committee formed headed by Ralph
Brown.
Feb 2002: Interim Draft 1 is released
3Q 2003: DSG Committee Reconvenes.
2Q 2004: Interim Draft 2 to be released. 3Q 2004: Interoperabil ity testing at CableLabs
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
5/83
2004, Cisco Systems, Inc. All r ights reserved. 5
Presented By:
John T. Chapman, Cisco Systems
OOB Applications
These are well established applications which are broadcast
from a software carousel. Conditional Access (CA) messages including entitlements
System Information (SI) messages
Electronic Program Guide (EPG) messages Emergency Alert System (EAS) messages
Other generic messages
Current systems use a 2 Mbps proprietary Out-Of-Band (OOB)path for signaling.
The OOB signaling will be carried over DSG.
Newer applications with middleware are emerging.
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
6/83
2004, Cisco Systems, Inc. All r ights reserved. 6
Presented By:
John T. Chapman, Cisco Systems
DSG Functionality
DSG allows the DOCSIS downstream transport to be used forOut-of-Band signaling.
DSG allows delivery of Out-of-Band messages through theDOCSIS downstream without requiring return pathfunctionality between the Set-top Device and the CMTS.
One-way DOCSIS
DSG allows legacy non-IP addressing of Set-top Device by aNetwork Controller to be transported over a tunnel on an IPnetwork.
DSG defines the address scheme.
DSG is like IP Multicast except when it is not
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
7/83
2004, Cisco Systems, Inc. All r ights reserved. 7
Presented By:
John T. Chapman, Cisco Systems
DSG Network DiagramSTD
STD
STD
STD
STD
STD
STD
STD
STD
IP
Backbone
DOCSIS
/ HFC
DOCSIS
/ HFC
DOCSIS
/ HFC
CMTS
CMTS
CMTS
Set-top
Controller(s)
DSG
Agent
Legacy addressing on the OOB or DSG of Set-top Devices bythe Set-top Controller is done with serial numbers or SmartCard addresses, not with IP addresses.
DSG preserves this application layer addressing.
DSG TunnelIP FlowDSG
Server
DSG
Client
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
8/83
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
9/83
2004, Cisco Systems, Inc. All r ights reserved. 9
Presented By:
John T. Chapman, Cisco Systems
DSG Advanced Mode
Setup The CMTS provisions the DSG Tunnels with a DSG Address
Table (DAT) in a new Downstream Channel Descriptor(DCD) DOCSIS MAC message
Operation
The Set-top Device uses its DSG Client ID as an index intothe DAT to find the new DSG Tunnel Address and DSGClassifier used for the DSG Tunnel.
CMTS receives IP packets, rewrites MAC address.
Set-top Device receives DSG Tunnels based upon DSGTunnel Address (MAC Address) and Packet Classifier
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
10/83
2004, Cisco Systems, Inc. All r ights reserved. 10
Presented By:
John T. Chapman, Cisco Systems
DSG Will Be Required Until
Set-top Device/CableCard addressing is done with IPaddresses
Provisioning and signaling software has been rewritten to useIP addresses
Content from Set-top Controller to Set-top Device isstandardized.
All HFC plants and homes are two-way
There are no impairments on the plant which would bringdown the upstream
This might be awhile!
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
11/83
2004, Cisco Systems, Inc. All r ights reserved. 11
Presented By:
John T. Chapman, Cisco Systems
DSG ECR Walk Through
DOCSIS Set-Top Gateway
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
12/83
2004, Cisco Systems, Inc. All r ights reserved. 12
Presented By:
John T. Chapman, Cisco Systems
DSG ECR Walk Through
Agenda
Definitions
DSG Network Components
DSG Server, DSG Agent
IP and MAC Addressing
The DCD Message
DSG Service Class
Security
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
13/83
2004, Cisco Systems, Inc. All r ights reserved. 13
Presented By:
John T. Chapman, Cisco Systems
Definitions
DSG ECR Walk-Through
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
14/83
2004, Cisco Systems, Inc. All r ights reserved. 14
Presented By:
John T. Chapman, Cisco Systems
Definitions
A cable receiver that contains an embedded CableModem for DOCSIS connectivity, an embeddedprocessor for an application environment, andeither an embedded or removable module forConditional Access. In OpenCable, thisdefinition refers to the combination of an
Advanced Host Device and a CableCARD.
Set-top Device
This is the computer system responsible for
managing the Set-top Devices within a cablesystem. It manages Set-top Devices throughcontrol and information messages sent via theOut-Of-Band channel.
Set-top Controller
DSG
Server
Set-top
Controller
DSG
Agent
CMTS
DSG
Client
Set-top
Device
IPBackbone DOCSIS
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
15/83
2004, Cisco Systems, Inc. All r ights reserved. 15
Presented By:
John T. Chapman, Cisco Systems
Definitions
The DSG Agent is the implementation of the DSGprotocol within the CMTS. The DSG Agent creates
the DSG Tunnel, places content from the DSGServer into the DSG Tunnel, and sends the DSGTunnel to the DSG Client.
DSG Agent
The DSG Client is the implementation of the DSG
protocol within the Set-top Device. The DSGClient terminates the DSG Tunnel and receivescontent from the DSG Server. There may be morethan one DSG Client within a Set-top Device.
DSG Client
The DSG Server refers to any server such as an
Application Server or other network attacheddevice that provides content that is transportedthrough the DSG Tunnel to the DSG Client.
DSG Server
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
16/83
2004, Cisco Systems, Inc. All r ights reserved. 16
Presented By:
John T. Chapman, Cisco Systems
Definitions
This specifically refers to the destination MACaddress of the DSG Tunnel. If the source MACaddress, the destination IP address, or the source
IP address is to be referenced, then that referencemust be explicitly stated.
DSG TunnelAddress
Any DOCSIS downstream channel that containsone or more DSG Tunnels.
DSG Channel
The DSG Tunnel exists between the DSG Agent inthe CMTS and the DSG Client in the Set-topDevice. The DSG Tunnel is identif ied by its DSGTunnel Address, and it carries one or more IPdatagram streams which originated from the DSGServer. Multiple DSG Tunnels may exist on asingle downstream DOCSIS channel, and a DSG
Tunnel may span one or more downstreams.
DSG Tunnel
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
17/83
2004, Cisco Systems, Inc. All r ights reserved. 17
Presented By:
John T. Chapman, Cisco Systems
Definitions
This refers to the MAC address of the DSG Clientwithin the Set-top Device. This MAC address has
been assigned by the manufacturer of theCableCARD and/or Conditional Access systemwithin the Set-top Device, and has been madeknown to the MSO for use in configuring the DSG
Agent.
Well-Known MACAddress
This is an identifier that uniquely identifies a DSGClient. The DSG Client ID is unique per DSG
Client, but is not unique per Set-top Device as thesame DSG Client which provides the samefunction may exist in multiple Set-top Devices. InDSG Basic Mode, the DSG Client ID is a 6 byteMAC address. In DSG Advanced Mode, the DSGClient ID may additionally be a 2 byte ApplicationID, a 2 byte CA_system_ID, or a broadcast ID.
DSG Client ID
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
18/83
2004, Cisco Systems, Inc. All r ights reserved. 18
Presented By:
John T. Chapman, Cisco Systems
Definitions
This is a 16 bit field indicating the type of CAsystem applicable for either the associated ECMand/or EMM streams. The CA_system_ID may beused as a DSG Client ID in DSG Advanced Mode.
CA_system_ID
This is a 16 bit field indicating a numeric ID for anapplication running on the Set-top Device. The
Application ID is typically assigned through aSource Name Sub-table (SNS) from [SCTE 65]carried in the Broadcast DSG Tunnel.
Application ID
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
19/83
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
20/83
2004, Cisco Systems, Inc. All r ights reserved. 20
Presented By:
John T. Chapman, Cisco Systems
Definitions
Operation with the DCD message. Addressassignment is dynamic. The DSG Tunnel Addressis determined by the DSG Agent and learned by
the DSG Client through the DSG Address Table inthe DCD message.
DSG AdvancedMode
Operation without the DCD message. Addressassignment is static. The DSG Tunnel Address is
determined by the DSG Client and learned by theDSG Agent through configuration. This modeprovides backwards compatibili ty with earlierversions of the DSG specification.
DSG Basic Mode
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
21/83
2004, Cisco Systems, Inc. All r ights reserved. 21
Presented By:
John T. Chapman, Cisco Systems
DSG Network Components
DSG ECR Walk-Through
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
22/83
2004, Cisco Systems, Inc. All r ights reserved. 22
Presented By:
John T. Chapman, Cisco Systems
DSG Server
For DSG Basic Mode only, the DSG Server MUST maintain aminimum data rate of one packet per second on at least one
DSG Tunnel within each unique group of DSG Tunnels whichserve a CPE device.
This requirement is to keep the acquisit ion time of theappropriate DOCSIS channel to less than one second.
The DSG Server MUST support either IP Multicast or IPUnicast.
The DSG Server MUST NOT send packets of a size that wouldcause IP fragmentation to occur.
Informational Note: The calculation of payload size shouldallow for the 20 byte IP protocol overhead, the 8 byte UDPoverhead, and any VPN/IPSec or other IP protocol overheadthat may be in use.
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
23/83
2004, Cisco Systems, Inc. All r ights reserved. 23
Presented By:
John T. Chapman, Cisco Systems
DSG Agent Network Side Operation
The DSG Agent MUST be implemented on a CMTS. The CMTS MUST NOT send standard DOCSIS MAC
Management messages to the DSG Tunnel Address.
The DSG Agent MUST NOT forward frames with Ethertypes
other than 0x0800, corresponding to IP, onto the DSG Tunnel.
If Dynamic Channel Change (DCC) is implemented and used tochange downstream channels, then the DSG Agent MUSTprovide a means to ensure that content of the DSG Tunnels are
forwarded onto the old and new DOCSIS downstream channelsthat are impacted by the DCC message.
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
24/83
2004, Cisco Systems, Inc. All r ights reserved. 24
Presented By:
John T. Chapman, Cisco Systems
DSG Agent Network Side Operation
The DSG Agent MUST be able to f ilter packets based on theUDP port number and the IP protocol type, after de-
encapsulation of any IP tunneling protocols that may havebeen used between the DSG Server and the DSG Agent.
This requirement should be interpreted as an input accesslist on a CMTS. This requirement should not be interpretedas the CMTS using the UDP ports to route packets to
different DSG Tunnels.
The DSG Agent MAY use source IP address verif ication toprevent forwarding of packets originating from other than atrusted DSG Server.
The DSG Agent MAY use dedicated links, Secure SocketsLayer (SSL/TSL), virtual private networks (VPN), IPSec, orother means to provide secure connections between it and theDSG Server. The specifics of how this may be implemented arebeyond the scope of this document.
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
25/83
2004, Cisco Systems, Inc. All r ights reserved. 25
Presented By:
John T. Chapman, Cisco Systems
DSG Agent RF Side Operation
The DSG Agent MUST support a one-way (downstream)transport without requiring return path functionality from theDSG Client.
The DSG Agent MUST be able to support forwarding on one ormore DOCSIS downstream channels.
The DSG Agent MUST simultaneously support DSG BasicMode Tunnels and DSG Advanced Mode Tunnels.
The DSG Agent MUST be able to support at least 32 DSGTunnels per downstream.
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
26/83
2004, Cisco Systems, Inc. All r ights reserved. 26
Presented By:
John T. Chapman, Cisco Systems
Sharing of DSG Tunnel
Set-top Device Vendor A and Set-top Device Vendor B mighthave their own DSG Tunnels A and B, but share a DSG Tunnelfrom CAS Vendor C.
DSG Agent sees 3 DSG clients Set-top Controller contains 2 DSG Clients
In legacy OOB equipment, the 2 Mbps media matched the 2Mbps input rate of the Set-top Device. This is no longer true.
EMM
SI STB A
EMM
SI STB B
EMM
SI STB A
EMM
SI STB B
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
27/83
2004, Cisco Systems, Inc. All r ights reserved. 27
Presented By:
John T. Chapman, Cisco Systems
DSG Tunnels
Solution
DSG Tunnels must be independent
eCM provides buffering
Rate shaping should be defined per DSG Tunnel.
Rate shaping should be a configurable rate.
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
28/83
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
29/83
2004, Cisco Systems, Inc. All r ights reserved. 29
Presented By:
John T. Chapman, Cisco Systems
DSG Agent Header Rewrite Rules
The DSG Agent MUST forward the IP packets received at itsconfigured IP address(es) by performing a MAC level rewrite
by replacing the destination MAC address with the DSGTunnel Address
and the source MAC address with the DSG HFC side MACaddress.
The DSG Agent or CMTS MAY modify any of the fields ofthe IP header with the exception of the IP Protocol Type.
The payload of the IP packet, including the UDP portnumbers, MUST remain unchanged.
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
30/83
2004, Cisco Systems, Inc. All r ights reserved. 30
Presented By:
John T. Chapman, Cisco Systems
IP and MAC Addressing
DSG ECR Walk-Through
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
31/83
2004, Cisco Systems, Inc. All r ights reserved. 31
Presented By:
John T. Chapman, Cisco Systems
DSG Tunnel Address
The destination MAC address of the DSG Tunnel is known as
the DSG Tunnel Address. The DSG Agent MUST be configurable to use a multicast
(group) MAC address as the DSG Tunnel Address.
The DSG Agent MUST also be configurable to instead use a
unicast (individual) MAC address as the DSG Tunnel Address.
It is recommended that the DSG Tunnel Address be a multicast(group) MAC address.
The use of a unicast (individual) MAC address is allowed onlyto support certain legacy DSG Clients.
Otherwise, the use of a unicast MAC address is explicitlydeprecated.
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
32/83
2004, Cisco Systems, Inc. All r ights reserved. 32
Presented By:
John T. Chapman, Cisco Systems
DSG Tunnel Address
A DSG Client operating in DSG Basic Mode will identify andreceive a DSG Tunnel based solely on the use of a Well-Known
MAC Address as the DSG Tunnel Address.
It is recommended that the Well-Known MAC Address be amult icast (group) Ethernet address.
That multicast (group) MAC address may be derived by
taking a unicast (individual) MAC address with an OUI [OUI]value set to the OUI value of the CableCARD or Conditional
Access system manufacturer, and setting the I/G bit to aone. The I/G bit is the Individual/Group bit, and i t is the LSBof the first byte of the MAC address [IEEE802.3].
Alternatively, the Well-Known MAC Address may be a unicast(individual) Ethernet address.
Informational Note: This last provision is to allow for earlydeployment of DSG, and is not intended for long term use.
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
33/83
2004, Cisco Systems, Inc. All r ights reserved. 33
Presented By:
John T. Chapman, Cisco Systems
DSG Tunnel with IP Multicast
The DSG Agent MUST allow the mapping of an IP Multicastaddress to a DSG Tunnel Address.
The DSG Agent MUST NOT allow one IP Multicast address tobe mapped to more than one DSG Tunnel Address.
The DSG Agent MUST be configured so that each interface
requiring the DSG Tunnel is a member of the appropriatemulticast group.
An IP Multicast address to DSG Tunnel Address associationMAY span one or more IP subnets.
An IP Subnet MAY span one or more downstreams.
Note that there is no requirement that the DSG Tunnel Addressbe generated using the technique of RFC 1112 which is astandard IP Multicast requirement
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
34/83
2004, Cisco Systems, Inc. All r ights reserved. 34
Presented By:
John T. Chapman, Cisco Systems
DSG Tunnel with IP Unicast
If the message stream from the DSG Server to the DSG Agentis IP Unicast, then the DSG Agent MUST support that IPUnicast message stream by at least one of the following threemethods:
1. By supporting IP Multicast tunneled over IP Unicast.
2. By translating the IP Unicast address to an IP Multicastaddress.
3. By forwarding the IP Unicast packet directly onto theDOCSIS downstream.
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
35/83
2004, Cisco Systems, Inc. All r ights reserved. 35
Presented By:
John T. Chapman, Cisco Systems
DSG Tunnel Packet Format
DOCSIS HDR MAC DA MAC SA T/L IP HDR IP SA IP DA Payload CRC
6+ 6 6 2 12 6 6 434 - 1480Bytes:
MAC Unicast DA
MAC Multicast DA
IP Unicast DA
IP Multicast DA
Preferred
L2 + L3 Exception
L2 Exception L3 Exception
DSG Agent DSG Server
Class D
DSG Agent
DSG Client or
MSO Defined or
RFC 1112
DSG Client or
MSO Defined
DSG Tunnel packet format with the allowed unicast variantsfor the MAC and IP Addresses.
The two variants create 4 cases
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
36/83
2004, Cisco Systems, Inc. All r ights reserved. 36
Presented By:
John T. Chapman, Cisco Systems
DSG Network Strategy
A router external to DSG Server
generates an IP Multicast tunnel
or DSG Agent forwards IP Unicast pkt
or DSG Agent does address translationand forwards multicast packet.
UnicastUnicast
A router external to the DSG Serverdoes address translation from unicast tomult icast, replicates packets, andforwards multicast.
MulticastUnicast
IP Multicast Tunnel between DSG Serverand DSG Agent
UnicastMulticast
DSG Agent forwards multicast packetMulticastMulticast
Typical Network StrategyIP Backbone
CapabilityDSG ServerCapability
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
37/83
2004, Cisco Systems, Inc. All r ights reserved. 37
Presented By:
John T. Chapman, Cisco Systems
DSG Tunnel with IP Unicast
Technique #1: Multicast Tunneling
By supporting IP Multicast tunneled over IP Unicast.
The DSG Server or a router external to the DSG Server
would encapsulate the IP Multicast packet within an IPUnicast packet.
The DSG Agent would de-encapsulate the IP Unicast tunneland forward the IP Multicast packet onto a DSG Tunnel.
PRO: This is the most efficient network solution
Uses GRE Tunnels (Generic Route Encapsulation).
RFC 1701 (1994), RFC 2784 (2000)
This is how multicast networks are built today whentraversing routers or other devices such as firewalls that donot support IP Multicast.
IP Multicast, ever since the days of MBONE, has always hadto solve this problem.
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
38/83
2004, Cisco Systems, Inc. All r ights reserved. 38
Presented By:
John T. Chapman, Cisco Systems
DSG Tunnel with IP Unicast
Technique #1: Multicast Tunneling
DSG Server(s) would deliver IP Multicast to a router(s). Therouter would use GRE to tunnel the multicast across the
network. Alternatively, the DSG Server could generate the GRE
Tunnels themselves.
Intermediate routers that support multicast could terminate the
GRE tunnel and replicate packets into new GRE Tunnels.
Because IP Multicast permits multiple senders, configurationswith redundant routers and redundant DSG Servers could beset up to feed a farm of DSG Agents.
SSM (Source Specific Multicast) can be used since a DSGclient in DSG Advanced Mode can fil ter on the IP Source
Address of the IP Multicast packet.
This is all part of the standard vision of IP Multicast.
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
39/83
2004, Cisco Systems, Inc. All r ights reserved. 39
Presented By:
John T. Chapman, Cisco Systems
DSG Tunnel with IP Unicast
Technique #2: Address Translation
By translating the IP Unicast address to an IP Multicast
address.
The new multicast packet would be forwarded to a DSGTunnel.
This is compliant with the DSG Spec since the DSG specallows almost all fields of the DSG Tunnel to be re-writ ten.
PRO: This allows CMTS manufacturers to leverage existing IPMulticast implementations.
PRO: Prevents the multicasting of IP Unicast packets.
CON: Address translation requires processor support and maynot scale well.
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
40/83
2004, Cisco Systems, Inc. All r ights reserved. 40
Presented By:
John T. Chapman, Cisco Systems
DSG Tunnel with IP Unicast
Technique #3: Forwarding
By forwarding the IP Unicast packet directly onto the DOCSISdownstream.
This option may cause an IP Unicast packet with an unicast(individual) MAC address to be multicast on the DOCSIS
downstream. (Note that this was the original DSG scheme)
As such, the forwarding of a packet with an IP Unicastaddress is allowed only to support certain legacy DSGClients.
Otherwise, the forwarding of a packet with an IP Unicastaddress to a DSG Tunnel is explicit ly deprecated.
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
41/83
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
42/83
2004, Cisco Systems, Inc. All r ights reserved. 42
Presented By:
John T. Chapman, Cisco Systems
Subnets and Downstreams
DSG Addressing differences between IP Mult icast vs IP Unicast
IP Subnets may contain multiple downstreams
Downstreams may contain multiple IP Subnets
DSG Tunnel
(IP Multicast)
DSG Tunnel
(IP Unicast)
DSG Tunnel
(IP Unicast)
IP Subnet IP SubnetIP Subnet IP Subnet
Downstream DownstreamDownstreamDownstream
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
43/83
2004, Cisco Systems, Inc. All r ights reserved. 43
Presented By:
John T. Chapman, Cisco Systems
The DCD Message
DSG ECR Walk-Through
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
44/83
2004, Cisco Systems, Inc. All r ights reserved. 44
Presented By:
John T. Chapman, Cisco Systems
DCD General Operation
A DSG Agent MUST generate DCD.
This means that there is no such thing as a Basic ModeDSG Agent (CMTS), even though DSG Clients can be BasicMode Only.
The DSG Agent MUST include all DSG Tunnels on the currentdownstream in the DSG Address Table in the DCD message.
One DCD message for all vendors
The DCD message is unique per downstream. The DSG Agent MUST support the DCD TLVs through the MIB.
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
45/83
2004, Cisco Systems, Inc. All r ights reserved. 45
Presented By:
John T. Chapman, Cisco Systems
Downstream Channel Descriptor (DCD)
MAC Management Message Header
Bit 0 8 16 24 31
~
~
~
~
TLV EncodedInformation
Configuration
Change Count
Number of
Fragments
Sequence
Number
New DOCSIS MAC Management Message
Type = 32, Version = 3, Max Length = 1522 bytes
Can be used with DOCSIS 1.1 and above
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
46/83
2004, Cisco Systems, Inc. All r ights reserved. 46
Presented By:
John T. Chapman, Cisco Systems
DCD Configuration Change Count
Incremented by one (modulo the field size) by the DSG Agentwhenever any of the values of the Downstream ChannelDescriptor change.
The configuration change count MUST be the same valueacross fragmented DCD messages.
If the DCD TLV parameters are changed, the DSG Agent MUSTincrement the configuration change count.
When the configuration change count is incremented, all DSG
Rules and DSG Classifiers from the previous DCD messageare considered invalid and are replaced by the DSG Rules andDSG Classifiers from the current DCD message.
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
47/83
2004, Cisco Systems, Inc. All r ights reserved. 47
Presented By:
John T. Chapman, Cisco Systems
DCD Fragmentation Number of Fragments
32 DSG Tunnels with 1 DSG Rule and 1 DSG Classifier couldbe as long as 2500 bytes, not including Vendor Specific Fields.
Fragmentation allows the DCD TLV parameters to be spreadacross more than one DCD message, thus allowing the totalnumber of DCD TLV parameters to exceed the maximum
payload of a single DCD message.
The value of this f ield represents the number of DCDmessages that a unique and complete set of DCD TLVparameters are spread across.
This field is an 8 bit unsigned integer.
The default value for this field is 1.
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
48/83
2004, Cisco Systems, Inc. All r ights reserved. 48
Presented By:
John T. Chapman, Cisco Systems
DCD Fragmentation Sequence Number
The value of this field is the sequence of which the DCDmessage was fragmented.
Sequence numbers MUST start with the value of 1 andincrease by 1 for each fragment. Thus, the first DCD messagefragment would have a sequence number of 1 and the last DCDmessage fragment would have a sequence number equal tothe Fragmentation Number.
The DSG Agent MUST NOT fragment within any top level orlower level TLVs.
Each DCD Message is a complete DOCSIS frame with its ownCRC.
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
49/83
2004, Cisco Systems, Inc. All r ights reserved. 49
Presented By:
John T. Chapman, Cisco Systems
DCD Fragmentation Sequence Number
Other than the Sequence Number, the framing of one DCDmessage is independent of the framing of another DCDmessage.
This allows the potential for the Set-top Device to processfragments as they are received rather than reassembling theentire payload.
This field is an 8 bit unsigned integer.
The default value for this field is 1.
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
50/83
2004, Cisco Systems, Inc. All r ights reserved. 50
Presented By:
John T. Chapman, Cisco Systems
DCD & Keep Alive
DCD provides a consolidated keep-alive mechanism for allDSG Tunnels on a particular downstream, even if the IPnetwork has been interrupted.
For Basic Mode, the DSG Server provided this service
The DSG Agent MUST insert a DCD message sequence at leastonce per second on each DOCSIS downstream that contains aDSG Tunnel.
The DSG Agent MAY insert a DCD message sequence with aDSG Channel List TLV at least once per second on eachDOCSIS downstream that does not contains a DSG Tunnel.
Used for DSG Channel List, not for keep-alive
The keep-alive for a particular DSG Tunnel is based upon theexistence of a series of DCD messages and upon the inclusionof that DSG Tunnel within those DCD messages.
No keep-alive if the DSG Tunnel is not listed.
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
51/83
2004, Cisco Systems, Inc. All r ights reserved. 51
Presented By:
John T. Chapman, Cisco Systems
DCD Contents
DSG Classification Parameters: (Type = 23)
The DSG Classifier is used to provide additional layer 3 andlayer 4 filtering for the DSG Tunnel.
DSG Rules: (Type = 50)
These parameters are used by the DSG Client to determinewhich DSG Tunnel to receive and if there are any DSGClassifiers to apply.
DSG Client Configuration: (Type = 51)
These include various operating parameters for the DSGClient, including timer values for the DSG Client statemachines and a list of the downstream frequenciescontaining DSG Tunnels.
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
52/83
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
53/83
2004, Cisco Systems, Inc. All r ights reserved. 53
Presented By:
John T. Chapman, Cisco Systems
DSG Classifiers
The definitions of the TLV values are defined in section Packet Classification Encodings in Annex C of DOCSIS-RFI.
The DCD message MUST NOT include any classificationparameters not l isted in Table 5-1.
The DSG Agent MUST NOT include any Ethernet LLC PacketClassification Encodings as these might interfere with the DSGRule parameters.
Type Length NameDSG
AgentDSG
Client
23 - Downstream Packet Classification Encoding
23.2 2 Classifier Identifier
23.5 1 Rule Priority 23.9 - IP Packet Classification Encodings
23.9.3 4 Source IP Address
23.9.4 4 Source IP Mask
23.9.5 4 Destination IP Address
23.9.6 4 Destination IP Mask
23.9.7 2 Destination TCP/UDP Port Start
23.9.8 2 Destination TCP/UDP Port End
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
54/83
2004, Cisco Systems, Inc. All r ights reserved. 54
Presented By:
John T. Chapman, Cisco Systems
DSG Classifiers
The DSG Classifier parameters are set through the DSG MIB.
They are not intended to be configured via a CMConfiguration File.
When DSG Classifiers are configured, the DSG Agent MUSTinclude the DSG Classifier encodings in the DCD messageson the downstream channels to which the Classifiers apply.
The DSG Classifier ID is unique per DSG Agent.
The DSG Agent applies the DSG Classifier parameters toincoming packets from the DSG Server in order to assign the
packet to the appropriate DSG Tunnel. The DSG Agent MUST classify incoming packets based upon
the Classification Parameters listed in Table 5-1 with theexception of the UDP Port.
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
55/83
2004, Cisco Systems, Inc. All r ights reserved. 55
Presented By:
John T. Chapman, Cisco Systems
DSG Rules
Inputs: DSG UCID Range, DSG Client ID
Variables: DSG Rule ID, DSG Rule Priority
Outputs: DSG Tunnel Address, DSG Classifier, DSG Rule VSP
Type Length NameDSG
AgentDSG
Client
50 - DSG Rule
50.1 1 DSG Rule Identifier 50.2 1 DSG Rule Priority
50.3 2 DSG UCID Range
50.4 - DSG Client ID
50.4.1 0 DSG Broadcast
50.4.2 6 DSG Well-Known MAC Address
50.4.3 2 CA System ID
50.4.4 2 Application ID
50.5 6 DSG Tunnel Address
50.6 2 DSG Classifier Identifier
50.43 - DSG Rule Vendor Specific Parameters
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
56/83
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
57/83
2004, Cisco Systems, Inc. All r ights reserved. 57
Presented By:
John T. Chapman, Cisco Systems
DSG Client ID
The DSG Client ID recognizes that IDs may originate from
different address spaces. Each of those address spaces arecoded as sub-TLVs within the DSG Client ID TLV.
These sub-TLVs MAY be repeated within the DSG Client ID TLVto include additional DSG Client IDs.
The same DSG Client ID MAY be listed in more than one DSGRule.
If the same DSG Client ID is listed in more than one DSG Rule,the expected behavior of the DSG Client is to accept all theDSG Rules while taking the DSG priority field into account.
The DSG Agent MUST support all ID types.
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
58/83
2004, Cisco Systems, Inc. All r ights reserved. 58
Presented By:
John T. Chapman, Cisco Systems
DSG Client ID DSG Broadcast ID
A DSG Client ID of this type is received by all Set-top Devices.
This is a short TLV that only contains a Subtype and Lengthfield. There is no Value field.
The DSG Broadcast ID provides a means for the MSO to sendcontent to all Set-top Devices from all manufactures at once.
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
59/83
DSG Cli ID CA S ID
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
60/83
2004, Cisco Systems, Inc. All r ights reserved. 60
Presented By:John T. Chapman, Cisco Systems
DSG Client ID CA System ID
A DSG Client ID of this type is received by a DSG Client thathas been assigned a CA_system_ID as defined by ITURecommendation H.222.0 and assigned by DVB.
All Conditional Access Vendors today have been assigned thisID (about 13 manufacturers).
This ID might get used for the DSG Tunnel which carries CASinformation.
DSG Cli t ID A li ti ID
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
61/83
2004, Cisco Systems, Inc. All r ights reserved. 61Presented By:John T. Chapman, Cisco Systems
DSG Client ID Application ID
A DSG Client ID of this type is received by a DSG Client thathas been assigned an Application ID.
The Application ID would be taken from a private addressspace managed by the MSO.
The Application ID is assigned to the DSG Client from a tablecontained within the DSG Broadcast Tunnel.
The typical table type used will be the Source NameSubtable (SNS) as defined in SCTE-65.
There may be one or more applications per DSG Tunnel. There
may be one or more DSG Tunnels that are used for carryingapplication traffic.
This is an ideal DSG Tunnel for sending content to middlewareapplications that would normally not have a MAC address.
DSG UCID R
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
62/83
2004, Cisco Systems, Inc. All r ights reserved. 62Presented By:John T. Chapman, Cisco Systems
DSG UCID Range
The values of the field specify the matching parameters for theUpstream Channel ID (UCID) for which the DSG Rule applies.
A DSG Client with UCID value ucid matches thisparameter i f ucid-low
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
63/83
2004, Cisco Systems, Inc. All r ights reserved. 63Presented By:John T. Chapman, Cisco Systems
DSG Client Configuration
This group of TLVs contains parameters for configuration andoperation of the DSG Client.
The state machines of the embedded Cable Modem in the Set-top Device, as defined in [OC-CFR], have several timer valueswhich define the operation of DSG. The set of DSG Timer TLVsallows those timer values to be dynamically provisioned fromthe DSG Agent.
Type Length NameDSG
AgentDSG
Client
51 - DSG Client Configuration
51.1 4 DSG Channel List
51.2 1 DSG Initialization Timeout
51.3 1 DSG Operational Timeout
51.4 1 DSG Two-Way Retry Timer
51.5 1 DSG One-Way Retry Timer
51.43 - DSG Client Config Vendor Specific Parameters
DSG Channel List
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
64/83
2004, Cisco Systems, Inc. All r ights reserved. 64Presented By:John T. Chapman, Cisco Systems
DSG Channel List
A DSG Channel is a downstream channel that contains one or
more DSG Tunnels.
A DSG Channel List is therefore a list of downstreams thatcontain DSG Tunnels.
This is intended to reduce the Set-top Device initial scantime.
Set-top Devices are responsible for picking a DSG Channelfrom the DSG Channel List based upon some cri teria that theyown.
The DSG Channel List is not intended to indicate which Set-top Device should go on which downstream.
DSG Channel List
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
65/83
2004, Cisco Systems, Inc. All r ights reserved. 65Presented By:John T. Chapman, Cisco Systems
DSG Channel List
Typically,
the DSG Channel List wil l contain a list of all the DSG
Channels, and the DSG Channel List wil l be advertised on all DOCSIS
downstream channels, regardless if the DOCSISdownstream channel is a DSG Channel.
This typical scenario has exceptions.
Each DOCSIS downstream serves different physical areasof the plant.
A single CMTS may actually span two regions of the plant
which have different frequencies for their DOCSISdownstreams.
Thus, the DSG Channel List would be different for each ofthose regions.
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
66/83
2004, Cisco Systems, Inc. All r ights reserved. 66Presented By:John T. Chapman, Cisco Systems
DSG Service Class& Security
DSG ECR Walk-Through
DSG Service Class
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
67/83
2004, Cisco Systems, Inc. All r ights reserved. 67Presented By:John T. Chapman, Cisco Systems
DSG Service Class
The DSG Service Class is used to manage the Quality ofService of the DSG Tunnels within the DSG Agent.
The DSG Service Class is identified with a Service ClassName and has an associated QoS Parameter Set.
The DSG Service Class parameters are set through the DSG
MIB. The DSG Service Class parameters are not intended to be
included in the DCD message or the CM Configuration File.
Multiple DSG Tunnels may reference the same DSG Service
Class.
Each DSG Tunnel MUST only have one Service Classreference.
DSG Service Class
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
68/83
2004, Cisco Systems, Inc. All r ights reserved. 68Presented By:John T. Chapman, Cisco Systems
DSG Service Class
The DSG Agent MUST recognize the following DSG ServiceClass Parameters. These parameters are defined Section Service Flow Encodings in Annex C of DOCSIS-RFI.
Service Class Name
Traffic Priority
Downstream Maximum Sustained Traffic Rate (R)
Maximum Traffic Burst (B)
Minimum Reserved Traffic Rate Assumed Minimum Reserved Rate Packet Size
DSG Security
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
69/83
2004, Cisco Systems, Inc. All r ights reserved. 69Presented By:John T. Chapman, Cisco Systems
DSG Security
Options
1. CM must know MAC address
2. BPI Link layer encryption (twoway plant only)
3. Application layer encryptionby CAS Vendor(Recommended)
Options
1. CMTS blocks any traffic fromupstream and screenssignaling messages
2. CMTS protects WAN side withIP source verif ication.
3. CMTS protects WAN side withIP Sec tunnels
4. CAS Vendor signs contentand Set-top Device verif iessignature (Recommended)
DSG Secur ity
Receiver Authorization
Only the author ized receiver
can receive DSG content
Sender Authorization
Only content from authorized
senders wil l be accepted
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
70/83
2004, Cisco Systems, Inc. All r ights reserved. 70Presented By:John T. Chapman, Cisco Systems
Applications
DOCSIS Set-Top Gateway
Regionalization Basic Mode
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
71/83
2004, Cisco Systems, Inc. All r ights reserved. 71Presented By:John T. Chapman, Cisco Systems
Regionalization Basic Mode
An operator may want to send different content to differentSet-top Devices from the same manufacturer on different HFC
network segments. In DSG Basic Mode, this requires placing the different DSG
Tunnels on different IP subnets.
This is because packets are switched between
downstreams within an IP subnet based upon theirdestination MAC address.
Thus, it is impossible to have different DSG Tunnels withthe same DSG Tunnel Address within an IP subnet with
DSG Basic Mode. Since in practice IP subnets tend to span an entire CMTS,
regionalization in DSG Basic Mode also tends to be done perCMTS.
Regionalization Per Downstream
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
72/83
2004, Cisco Systems, Inc. All r ights reserved. 72Presented By:John T. Chapman, Cisco Systems
Regionalization Per Downstream
In DSG Advanced Mode, a DSG Tunnel Address substitutionmay be made on a per downstream basis.
For example, there could be multiple IP flows from the DSGServer to the DSG Agent.
These flows may be intended for the same function suchas EAS information but the content differs across
downstreams within the same subnet. Each of these flows would get mapped to a different DSG
Tunnel Address on each downstream (or group ofdownstreams, depending upon geographical requirements).
Each downstream would have a unique DCD message whichwould contain the same DSG Client ID, but would contain theunique DSG Tunnel Address.
This is demonstrated in Figure 5-2, Example #2.
Regionalization Per Upstream
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
73/83
2004, Cisco Systems, Inc. All r ights reserved. 73Presented By:John T. Chapman, Cisco Systems
Regionalization Per Upstream
On a two-way HFC plant, the DSG Client can use the UpstreamChannel ID (UCID) for further granularity.
One approach is to write a separate DSG Rule for each rangeof UCIDs that are within a region.
Each DSG Rule would be for a separate DSG Tunnel.
In this scenario, multiple DSG Rules would have the sameDSG Client ID, but a different DSG Tunnel Address and adifferent UCID Range.
This is demonstrated in Figure 5-2, Example #3.
Regionalization with different DSG Tunnels for differentcontent is useful when the number of content streams is lowand the content per stream is high.
Regionalization With UDP Ports
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
74/83
2004, Cisco Systems, Inc. All r ights reserved. 74Presented By:John T. Chapman, Cisco Systems
Regionalization With UDP Ports
A second approach which would use fewer DSG Tunnels is forthe DSG Server to place the regionalized content onto differentdestination UDP ports.
Each destination UDP port would then be associated with adifferent range of UCIDs.
In this scenario, mult iple DSG Rules would have the sameDSG Client ID and the same DSG Tunnel Address, but adifferent UCID Range.
In both approaches, at least one DSG Rule would include thedefault DSG Tunnel for DSG Clients which could not registerand obtain a UCID.
This rule would have a lower Rule Priority than the otherDSG Rules.
Regionalization with one DSG Tunnel and UDP ports is usefulwhen the number of content streams is high and the contentper stream is low.
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
75/83
2004, Cisco Systems, Inc. All r ights reserved. 75Presented By:John T. Chapman, Cisco Systems
Examples
DOCSIS Set-Top Gateway
Example #1
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
76/83
2004, Cisco Systems, Inc. All r ights reserved. 76Presented By:John T. Chapman, Cisco Systems
p
Example #1: Two DSG Tunnels with MAC DA substitution.
DSG
Server 2
DSGServer 1
CMTS
DSG
Client 1
DSG
Client 2
DSG
Client 1
DSGClient 2
Downstream 1
Downstream 2
101.1.1
101.1.1
102.2.2
102.2.2
12.8.8.1
12.8.8.2
IP Multicast 228.9.9.1105.5.5
IP Multicast 228.9.9.2
106.6.6
DSG Client ID
Destination IP Address
DSG Tunnel AddressNote: 105.5.5 is short for 0105.0005.0005
Example #2: Regionalization per Downstream
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
77/83
2004, Cisco Systems, Inc. All r ights reserved. 77Presented By:John T. Chapman, Cisco Systems
p g p
DSG Client ID 101.1.1
DSG Rule (DS1)DSG Rule ID 1
DSG Tunnel Address 105.5.5
DSG Client ID 101.1.1
DSG Rule (DS2)DSG Rule ID 1
DSG Tunnel Address 106.6.6
DSG
Server 2
DSGServer 1
CMTS
DSG
Client 1
DSG
Client 2
DSG
Client 1
DSGClient 2
Downstream 1
Downstream 2
101.1.1
101.1.1
102.2.2
102.2.2
12.8.8.1
12.8.8.2
IP Multicast228.9.9.1105.5.5
IP Multicast 228.9.9.2
106.6.6
DSG Client ID
Destination IP Address
DSG Tunnel AddressNote: 105.5.5 is short for 0105.0005.0005
Example #3: Regionalization per Upstream
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
78/83
2004, Cisco Systems, Inc. All r ights reserved. 78Presented By:John T. Chapman, Cisco Systems
p g p p
DSG
Server 2
DSGServer 1
CMTS
DSG
Client 1
DSG
Client 2
DSG
Client 1
DSGClient 2
Downstream 1
Downstream 2
101.1.1
101.1.1
102.2.2
102.2.2
12.8.8.1
12.8.8.2
IP Multicast228.9.9.1105.5.5
IP Multicast 228.9.9.2
106.6.6
DSG Client ID
Destination IP Address
DSG Tunnel AddressNote: 105.5.5 is short for 0105.0005.0005
Example #4
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
79/83
2004, Cisco Systems, Inc. All r ights reserved. 79Presented By:John T. Chapman, Cisco Systems
Example #4: Two DSG Tunnels with Full
Classifiers with MAC DA substitution.
DSG Client ID 101.1.1
DSG Rule (DS1 & DS2)
DSG Rule ID 1
DSG Tunnel Address 105.5.5
DSG Classifier ID 10
DSG Client ID 102.2.2
DSG Rule (DS1 & DS2)
DSG Rule ID 2
DSG Tunnel Address 106.6.6
DSG Classifier ID 20
IP SA 12.8.8.1
DSG Classifier
DSG Classifier ID 10
IP DA 228.9.9.1UDP DP 8000
IP SA 12.8.8.2
DSG Classifier
DSG Classifier ID 20
IP DA 228.9.9.2UDP DP 8000
Example #5
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
80/83
2004, Cisco Systems, Inc. All r ights reserved. 80Presented By:John T. Chapman, Cisco Systems
Example #5: One DSG Tunnel, support ing both IP Multicast flows
from multiple DSG Servers (many-to-one) to multiple DSG Clients
(one-to-many) with full classification and MAC substitution.
DSG Client ID101.1.1
102.2.2
DSG Rule (DS1 & DS2)
DSG Rule ID 1
DSG Tunnel Address 105.5.5
DSG Classifier ID10
20
IP SA 12.8.8.1
DSG Classifier
DSG Classifier ID 10
IP DA 228.9.9.1
UDP DP 8000
IP SA 12.8.8.2
DSG Classifier
DSG Classifier ID 20
IP DA 228.9.9.2
UDP DP 8000
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
81/83
2004, Cisco Systems, Inc. All r ights reserved. 81Presented By:John T. Chapman, Cisco Systems
Summary
DOCSIS Set-Top Gateway
Summary
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
82/83
2004, Cisco Systems, Inc. All r ights reserved. 82Presented By:John T. Chapman, Cisco Systems
DSG is like IP Multicast except when it is not
The exceptions are:
A unicast IP address is explicitly deprecated butpermitted
A unicast MAC address is explicitly deprecated but
permitted The multicast MAC address does not have to be RFC 1112
compliant
IGMP is not used.
But:
DSG can forward an IP Multicast stream from the DSGServer to the DSG Client, and manage the session.
8/12/2019 DSG Tutorial Vendor Briefing 2004-04
83/83